This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

MAC Deny -> Guest Network

Hi all,

i want to deny a guest device (which is allowed to use Internet) to use our network because of some ips alerts. So i give a short overview about our configuration:

Guest DMZ: 10.22.0.0/16
DHCP Server active

Webfilter Proxy Profile Transparent
Auth. Modus Browser (HTTP)
Firewall Rule: GuestDMZ -> HTTPS -> Internet -> allow

After some try an error i find out how to configure a MAC based firewall rule:

Definitions & Users -> Network Definitions -> MAC Adress Definitions
I Setup a list (WLAN-Deny-List) including the MAC

Network Protection -> Firewall -> new rule
Source: DMZ-WLAN
Service: ANY
Destination: ANY
Source MAC Adresses: WLAN-Deny-List

OK, now i can block the HTTPS Traffic for this device but what is with the HTTPS/DNS Traffic from the Web Filtering Rule inside the Web Protection Module?

How can i deny all communication from the MAC this device is using?

regards, Abyss_X

This thread was automatically locked due to age.

Parents

0 FrankBarmentlo over 11 years ago

I tested some things, but I don't think you can get around by making an object with assigned IP,
this to be sure you always have the correct machine(based on mac-address and IP)
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 FrankBarmentlo over 11 years ago

I tested some things, but I don't think you can get around by making an object with assigned IP,
this to be sure you always have the correct machine(based on mac-address and IP)
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data